CVE-2017-12618

Source
Severity Low
Remote No
Type Denial of service
Description
APR-util 1.6.0 and prior failed to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-468 apr-util 1.6.0-1 1.6.1-1 Low Fixed
Date Advisory Group Package Severity Description
27 Oct 2017 ASA-201710-33 AVG-468 apr-util Low denial of service
References
https://mail-archives.apache.org/mod_mbox/apr-dev/201710.mbox/%3CCACsi252POs4toeJJciwg09_eu2cO3XFg%3DUqsPjXsfjDoeC3-UQ%40mail.gmail.com%3E